Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

Security Awareness Training Blog

Keeping You Informed. Keeping You Aware.
Stay on top of the latest in security including social engineering, ransomware and phishing attacks.

View Topics

Labor Day Alert: Mobile Phishing Attacks on the Rise for Remote Employees

Aug 31, 2023 1:59:58 PM By Stu Sjouwerman
A recent survey by Lookout, Inc. warns for a specific attack vector as Labor Day approaches. The study shows that 85% of enterprise employees capable of remote work plan to do so on ...
Continue Reading

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

Aug 31, 2023 12:18:44 PM By Stu Sjouwerman
Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.
Continue Reading

Customers of Cryptocurrency FTX are Target of  Phishing Emails

Aug 31, 2023 11:06:04 AM By Stu Sjouwerman
Customers of the bankrupt cryptocurrency exchange FTX are already receiving phishing emails following a breach of personal data held by several crypto companies, CoinDesk reports.
Continue Reading

Open Redirect Flaws: The Newest Phishing Trick

Aug 30, 2023 3:45:49 PM By Stu Sjouwerman
No surprise: phishing attacks are on the rise, and an old technique is now--again--getting increasingly popular: open redirect flaws. These flaws allow attackers to redirect victims to ...
Continue Reading

Asking Claude AI For a Little Encryption Help... :-(

Aug 30, 2023 10:06:44 AM By Stu Sjouwerman
A friend sent me this:
Continue Reading

Quishing: QR Codes as Phishbait

Aug 30, 2023 9:12:55 AM By Stu Sjouwerman
Researchers at Trustwave are tracking an increase in the use of QR codes to spread phishing links.
Continue Reading

CyberheistNews Vol 13 #35 New KnowBe4 Callback Phishing Feature Boosts Your Users' Security Awareness

Aug 29, 2023 9:00:00 AM By Stu Sjouwerman
Continue Reading

Case Study: LoanLogics Combined Compliance & Security Awareness Training to Improve Security Culture

Aug 29, 2023 8:58:39 AM By Stu Sjouwerman
In the drive to build a strong security culture, security awareness and compliance training should work hand in hand.
Continue Reading

Top 10 Trends in Business Email Compromise for 2023

Aug 28, 2023 8:46:11 AM By Stu Sjouwerman
Researchers at Trustwave have published a report outlining trends in business email compromise (BEC) attacks, finding that these attacks spiked in February of 2023.
Continue Reading

Use KnowBe4’s New Callback Phishing Feature to Boost Your Organization's Security Awareness

Aug 25, 2023 8:20:17 AM By Stu Sjouwerman
What's the Deal with Callback Phishing?
Continue Reading

Your KnowBe4 Fresh Content Updates from August 2023

Aug 25, 2023 8:00:00 AM By Stu Sjouwerman
Check out the 21 new pieces of training content added in August, alongside the always fresh content update highlights, events and new features.
Continue Reading

Duolingo Users Should Be on the Lookout for Targeted Phishing Attacks

Aug 24, 2023 8:58:30 AM By Stu Sjouwerman
Users of the language learning app Duolingo should be wary of targeted phishing attacks following a recent data leak, according to Anthony Spadafora at Tom’s Guide. Criminals scraped the ...
Continue Reading

Data Breaches Involving Social Engineering Attacks Take Longer to Identify and Contain

Aug 23, 2023 3:28:36 PM By Stu Sjouwerman
Continuing coverage of IBM’s recently-released Cost of a Data Breach report, we focus on the impact attacks involving social engineering have on data breach costs.
Continue Reading

Ransomware Attacks Rise 69% and 1500 Organizations Feel the Hurt

Aug 23, 2023 1:13:24 PM By Stu Sjouwerman
A new report from Rapid7 has found that the number of ransomware attacks increased by 69% in the first half of 2023. Rapid7 incident response data found that at least 1500 organizations ...
Continue Reading

Social Engineering Is the Number One Cybersecurity Problem by Far

Aug 23, 2023 1:10:11 PM By Roger Grimes
The number one way that hackers and malware compromise people, devices, and networks is social engineering. No one argues that anymore, but it was not always known or discussed that way. ...
Continue Reading

LinkedIn Deception: How a Chinese Spy Tricked Thousands of UK Officials

Aug 23, 2023 10:35:27 AM By Stu Sjouwerman
In last few years, cyber espionage has taken a new form. A recent investigation by The Times has unveiled a Chinese intelligence officer's extensive use of LinkedIn to target UK ...
Continue Reading

Phishing Tops the List as the Most Costly Initial Attack Vector in Data Breaches

Aug 23, 2023 8:59:37 AM By Stu Sjouwerman
After you come to grips with the massive average cost of a data breach to an enterprise organization measured in the millions, it’s time to look at the factors that increase – and lower – ...
Continue Reading

Data Breach Costs in Healthcare Rise 53% to More than Double the Average

Aug 23, 2023 8:58:54 AM By Stu Sjouwerman
It appears that one of the most regulated industries also holds the title for the highest average data breach costs – coming in at just under $11 million per breach.
Continue Reading

Deceptive Links, Brand Impersonation, and Identity Deception Top the List of Phishing Attack Tactics

Aug 23, 2023 8:58:43 AM By Stu Sjouwerman
As phishing attacks continue to dominate as an initial attack vector, new data shows that attackers maintain the use of tried-and-true techniques as the means to successful attacks.
Continue Reading

Phishing Campaigns Targeting Microsoft Login Credentials Jump an Unprecedented 6100%

Aug 23, 2023 8:58:36 AM By Stu Sjouwerman
Monitoring of traffic to phishing pages hosted on the free hosting service Cloudflare R2 show an unheard of spike of 6100%, many going undetected by many security solutions due to the ...
Continue Reading
Subscribe

Search Our Blog


Comprehensive Anti-Phishing Guide

Subscribe To Our Blog

Posts By Topic

View all

Get the latest about social engineering

Subscribe to CyberheistNews